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DETAILED ACTION 

Claims 1-9 are presented for examination. 

Throughout this office action, Examiner has included references to particular 
sections of the prior art(s) for Applicant's convenience. Although the specified citations 
are representative of the teachings in the prior art(s) as applicable to each specific 
limitation, other passages and/or figures may apply as well. Therefore, in preparing the 
response, Applicant is respectfully requested to consider each prior art in its entirety, as 
well as the specific citation(s)/passage(s) cited by the Examiner for teachings 
corresponding to all or part(s) of the claimed invention. 

Information Disclosure Statement 

The information disclosure statement (IDS) submitted on 10/8/2004 is in 
compliance with the provisions of 37 CFR 1 .97. Accordingly, the information disclosure 
statement is being considered by the examiner. 

Claim Objections 

Claims 1-9 are objected to because of the following informalities: 

Claim 1 recites the limitation "the given filename" in the third line of the body of 

the claim and "the secret value" in the last line of the body of the claim. There is 

insufficient antecedent basis for this limitation in the claim. 
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Claim 7 recites the limitation "the given filename" in the third line of the body of 
the claim and "the secret value" in the 10 th and 13 th line of the body of the claim. There 
is insufficient antecedent basis for this limitation in the claim. 

Claim 8 recites the limitation "the filename" in the first line of the body of the 
claim and "the secret value" on the third and fifth lines. There is insufficient antecedent 
basis for this limitation in the claim. 

Appropriate correction is required. 

Claim Rejections - 35 USC §112 

The following is a quotation of the second paragraph of 35 U.S.C. 1 12: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

Claims 7 and 8 are rejected under 35 U.S.C. 112, second paragraph, as being 
unclear as to whether it is applicant's intention to claim "a system" or "a method", i.e., 
claims 7 and 8 are not clearly directed to either an apparatus or a method. 



Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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Claim 1-9 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Hardjono, (U.S. Patent No. 6,643,773), in view of Castro et al., (U.S. Patent No. 
6,671,821 and Castro hereinafter). 

Regarding claims 1, 3, and 9, Hardjono discloses a method of authentication, 
wherein a plurality of nodes communicate in a multicast, whereby the sending node and 
the receiving node share a common secret value and thereby belong to an accepted 
group (col. 4, lines 27-67 and col. 5, lines 1-67 and col. 6, lines 1 -43)(" It should be 
noted, that the terms client and server could amount to any two parties involved in a 
communication session and that the terms filename and file could amount to virtually 
any type of information on any format such as data files or packets of data ")(par. 20 of 
the published disclosure of the instant application), comprising the steps of: 

Hardjono discloses wherein upon initiating a multicast, a symmetrical shared 
multicast encryption key (i.e., shared key) is distributed to each descendant router in the 
multicast. The shared key and the hash function is then used to determine if the tag 
(i.e., hash) falls within the specified examination guidelines and the message is 
authentic. Therefore, Hardjono's message/data packet, explicitly contains the message 
and message's tag. It is known in the art to include timestamps in the data packet to 
prevent replay attacks (i.e., wherein the message corresponds to the filename/file, and 
a tag including data indicating that the receiving node is in the multicast corresponds to 
a first hash value according to a first hash function formed from the filename and the 
secret value)(col. 4, lines 27-67 and col. 5, lines 1-67 and col. 6, lines 1-43). 
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Hardjono does not explicitly disclose a nonce which is associated with the given 
filename. 

However, Castro discloses adding the variable t, a timestamp or a counter, in the 
message, which is used to prevent replay attacks (col. 13, lines 4-20). 

Therefore, it would have been obvious to a person of ordinary skill in the art at 
the time of applicant's invention to modify teachings of Hardjono with teachings of 
Castro because it would allow adding the variable t, a timestamp or a counter, in the 
message as disclosed by Castro. One of ordinary skill in the art would have been 
motivated by the suggestion of Castro to prevent replay attacks (Castro, col. 13, lines 4- 
20). 

Regarding claims 2, 4, and 8, Hardjono discloses the step of: 
extracting the filename/file of a received first message, extracting the first hash 
value (i.e., wherein the receiving router inherently has to extract the message, 
corresponding to the filename/file, and the base tag, corresponding to the first hash 
value, before it can determine whether or not the message is authentic - note that the 
instant application explicitly discloses " the terms filename and file could amount to 
virtually any type of information on any format such as data files or packets of data" - 
par. 20 of the published disclosure), 

forming a value of the received filename and the secret value (i.e., the receiving 
router generates and appends an upstream tag to the message/base tag combination, 
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wherein the message/base tag combination corresponds to the value formed of the 
received filename and the secret value), 

forming a second hash value according to the first hash function formed from the 
value of the filename and the secret value (i.e., the receiving router generates and 
appends an upstream tag to the message/base tag combination, wherein the upstream 
tag corresponds to the second hash value. In addition, the router ID number of the 
receiving router also is appended to the message/base tag combination. The upstream 
tag is a function of the message, receiving router ID number, base tag, and encryption 
key of the receiving router. Each of these parameters may be used as input into a key 
hash function to produce the upstream tag, and the key hash function is the same for all 
tags. After the upstream tag and router ID number are appended to the message/base 
tag combination, the entire message combination is transmitted to the receiving router's 
parent router (step 214)), 

comparing the first hash value with the second hash value and if the values are 
the same (i.e., wherein at each receiving node if message is determined to be 
authentic), establishing that the first message stems from a client belonging to the 
accepted group, otherwise establishing that the client does not belong to the accepted 
group (i.e., As discussed in FIG. 3, use of the receiving router encryption key enables 
it's parent to confirm that it in fact received the message from the receiving router. In 
another word, if the authentication is confirmed, then it is confirmed that the message is 
received from a network device in the multicast)(col. 5, lines 25-67 and col. 6 lines 1-67 
and col. 7, lines 1-26). 
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Hardjono does not explicitly disclose a nonce which is associated with the given 
filename. 

However, Castro discloses adding the variable t, a timestamp or a counter, in the 
message, which is used to prevent replay attacks (col. 13, lines 4-20). 

Therefore, it would have been obvious to a person of ordinary skill in the art at 
the time of applicant's invention to modify teachings of Hardjono with teachings of 
Castro because it would allow adding the variable t, a timestamp or a counter, in the 
message as disclosed by Castro. One of ordinary skill in the art would have been 
motivated by the suggestion of Castro to prevent replay attacks (Castro, col. 13, lines 4- 
20). 

Regarding claim 5, Hardjono discloses a method according to claim 3, wherein 
the first hash function is the same as the second hash function (i.e., the key of each 
router in a multicast is generated as a function of the root key, wherein a router can 
determine the key of any given descendant router by iteratively utilizing the (same) hash 
function to calculate each lineally successive downstream child router between it and a 
give descendant router)(col. 5, lines 5-21). 

Regarding claim 6, Hardjono discloses a method according to claim 1, wherein 
the inputs to hash functions are concatenated (i.e., The upstream tag is a function of the 
message, receiving router ID number, base tag, and encryption key of the receiving 
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router wherein it is inherent that multiple parameters as inputs to the hash function are 
concatenated/combined). 

Regarding claim 7, since claim 7 has combined limitations of claims 1 and 4; 
therefore, the logic relied upon for rejecting claim 1 combined with the reasoning for 
rejection of claim 4 as discussed above is applicable in rejecting claim 7. 



Conclusion 

The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. Please see the attached PTO-892 for a complete listing. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to AREZOO SHERKAT whose telephone number is 
(571)272-3796. The examiner can normally be reached on 8:00-4:30 Monday-Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571 ) 272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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Patent Examiner 
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Supervisory Patent Examiner, Art Unit 2432 



